Policy-Discussion

[Duane at e164 dot org <duane AT e164.org>]

Pete Stephenson wrote:

> This reminds me of those seedy letters sent out by domain registrars
> offering to renew one's domain for some horribly inflated price.

As you point out, the only difference is overly inflated, both are spam
scams.

> The fact that Certstar has a cert from Equifax (rather than themselves)
> and uses poor grammar in their spammy message doesn't bode well either.

Just another reseller, perhaps a complaint should be lodged with Equifax
about their sales methods, be interesting to find out if they are in
breach of some contract with Equifax, just another way to cut off the
air supply to prevent future moles from thinking its worth while doing.

> I would hope that CAcert members would recognize it as such, and ignore
> it. If it gets to be a problem, maybe it'd make sense to put a small
> notice on the CAcert site until it dies down for a bit?

As you can tell, ignoring spam is doing wonders for that problem ;)

In this case you are dealing with reputations, not only of the spammer,
but potentially Equifax and that changes everything.

> I like to think (and perhaps I'm wrong) that people involved with
> SSL-related issues tend to be administrators, and thus reasonably
> intelligent people who can identify such emails as being seedy.

While that may be true, you are forgetting about the PHBs enforcing
their will on others just to show they are doing something to make their
salaries worth while for the company.

-- 

Best regards,
 Duane

http://www.freeauth.org - Enterprise Two Factor Authentication
http://www.nodedb.com - Think globally, network locally
http://www.sydneywireless.com - Telecommunications Freedom
http://e164.org - Global Communication for the 21st Century

"In the long run the pessimist may be proved right,
    but the optimist has a better time on the trip."

Attachment: signature.asc
Description: OpenPGP digital signature